-
漏洞描述

libtunepimp contains several flaws that may allow a malicious user to realize a stack based buffer overflow and to issue arbitrary commands on the compromised system. The issue is triggered when handling specially crafted tagged media files (.ogg, .mp3) with software using libtunepimp library.

-
时间线

公开日期:
2006-07-13

发现日期:
Unknow

利用日期:Unknow

解决日期:Unknow

-
解决方案

Upgrade to version 0.4.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.